ISO 27001 Consultancy
IT Governance is the world’s leading ISO27001 service provider
We offer a comprehensive range of flexible, practical support packages to help organisations – of any size, anywhere in the world – implement an Information Security Management System (ISMS) that uses the best practice contained in ISO27001 and which is capable of independent, accredited certification.
Call us on 0845 070 1750 or email us to find out more about our consultancy offerings.
Hundreds of successful projects have started with an IT Governance ISO27001 Health Check, or our Business Case Review/Development service designed for managers considering or tasked with implementing ISO 27001 – especially with the aim of achieving accredited certification to the standard. And after your project is underway, we can transfer the knowledge that you need at each and every step of the way – you choose within your budget what you want us to help you with, and when! You remain in control, calling on us when the need arises.
Do we recommend that you achieve ISO27001 certification? - YES!
Our ISO/IEC 27001 consultancy services use methodologies and tools that have been developed and honed over 15+ years, when two of our directors led the world’s first successful certification to BS7799, the forerunner of ISO 27001.
What are the benefits of ISO27001 certification?
Adopting an ISMS and gaining accredited certification enables you to:
Comply with business, legal, contractual and regulatory requirements
Adopt a risk-based approach that informs senior-level decision-making
Win new business opportunities / retain your existing customer-base
Differentiate your organisation in the market as Standards-Compliant
Avoid large financial penalties – both regulatory fines and contractual
Remove the need for completion of detailed security questionnaires
Safeguard your own / your client’s valuable intellectual property rights
Build trust & confidence that encourages your business partners & customers to entrust confidential data with the company (i.e. beyond self-declaration)
Motivate leaders to maintain focus and impetus on management systems
Support a continuous process of improvement throughout the organisation
Reduce/remove the need for 2nd party audits and the associated overhead
What does a typical ISO27001 project look like?
There are many reasons why our clients choose to work with us and really there is no such thing as a ‘typical project’ in terms of what we can and do provide.
That's why it’s important that our consultants can combine deep expertise and understanding of information security management and ISO27001 best practice. Their practical, pragmatic approach ensures that each of our clients is able to achieve maximum business benefit and return on investment from their project.
We can show you how to get started on your project and keep it on track to achieve clearer value for money from better information security management. Our consultants bring you peace of mind, because working with IT Governance, you know that information security (cyber security) risks have all been properly identified and remediated in a way that reflects the appropriate response to risk.
With project support provided by our consultants, you can implement ISO27001. We transfer the knowledge that you need at each and every stage in adoption. What is more, you can hire us for either the whole job or any part of the process – for example, we can help you to:
Carry out a Health Check lead by our experts
Define strategy for achieving ISO27001
Perform a detailed risk assessment
Develop ISMS documentation (high level and/or low-level, as required)
Roll out ISMS and associated controls
Determine training and awareness needs
Prepare for Internal, Stage 1 and Stage 2 (certification) Audits
Achieve accredited certification
Maintain your ISMS (surveillance cycle)
We help you to take account of all your risks and business goals, focusing on critical areas of your information security management system as it develops.
Our consultants will show you how to carry out a risk assessment; write and develop your Statement of Applicability; achieve your business targets; analyse previous performance; identify and fix recurring weak spots – all based on our experience of projects of all sizes in a variety of different industry situations!
Can you help our organisation to transition to the new ISO27001:2013 standard?
Yes. We can help you understand the relationship between ISO/IEC 27001:2013 and its predecessor ISO/IEC 27001:2005 and the impact that the new standard is likely to have on your existing ISMS.
For more information, see our ISO27001:2013 Health Check service.
Why 150+ organisations use IT Governance consultants for ISO27001:
Free initial assessment and/or low-cost IT Governance Health Check so that you can assess where you are (after all, you might already meet many of the requirements) and identify how you can progress with us to success
Transparent pricing enables you to control all your costs of achieving certification
Implementation approach and methodology that is pragmatic, proven and straightforward (and we did write the book on how to do it)
Transfer of knowledge and skill to you and your people, so that you can continue meeting compliance targets after the initial implementation period ends
Comprehensive and integrated ISO 27001 resources including: experienced consultants; Risk management expertise; Technical information security expertise; Trainers and training courses; Books and tools; Recruitment and support
Information Security Management System (ISMS) tailored so that it suits your requirements, is cost-effective to operate and still continues to meet ISO 27001 requirements
Link your ISO 27001 Information Security framework with your CobiT®, ISO 20000, ITIL®, PCI DSS and other management frameworks, as well as with your other information regulatory compliance obligations
In-house training and public training courses lead by our international experts help you to make rapid progress and develop the skills to run your ISMS
Simple, 'no quibble' 100% guarantee of successful certification removes all worry!
Your free, initial, no-obligation assessment.
This will give you an overview of where you are against the requirements of ISO 27001, and of the basic steps that you will need to take to achieve your project goals. It includes a proposal that will enable you to quickly assess the value attached to using IT Governance to help you achieve ISO 27001 certification.
Please email us or telephone + 44 845 070 1750 us today to speak with one of our consultancy team and arrange your free assessment.
ISO 27001 Consultancy Case Studies
IT Governance consultants have worked with a great many organisations, both public and private, across a wide range of market sectors and industry types, helping them to implement ISO 27001 within their organisation through consultancy tailored to their business requirements to achieve strategic goals.
We offer additional support options including; acting as a mentor and coach to your internal project team and running the project for you. Either way, we focus on enabling a suitable transfer of skills and knowledge so that you can easily maintain your own ISMS and ISO 27001 certification after your successful initial certification audit.
Find out more about our ISO27001 Case Studies
What our clients say
It is our aim at IT Governance to assist organisations in achieving ISO 27001 certification as quickly, and cost effectively as possible. Here is a sample of customers who have employed IT Governance ISO 27001 consultancy services:
“IT Governance was able to guide our implementation team from the initial phases; from suitably informed management support, to scoping, planning, communication, risk assessment, control selection, documentation, and testing … right up to the external audit by our chosen certification body, Bureau Veritas, leading to certification. Each step required us to understand what was being asked of us, and IT Governance consultants were there to ensure that we were ready.”
- Mike Fegan, Tribal
“Having IT Governance on hand to guide our swift adoption of the ISO27001 Standard and provide ongoing expert support has been invaluable. They really understood the needs of a technology enterprise like ours.”
- Paul Green, Wirefast
“I would have no hesitation in recommending IT Governance to others. The main advantage was their flexibility. IT Governance tailored their services, (whether it be training or consultancy) to our specific needs.”
- Paul Berry, Senior Project Manager, Martin Dawes Solutions
“We benefited hugely from IT Governance’s advice and they effectively mapped out the route we needed to follow. If I were faced with doing the project all over again, the first thing I would do is get an expert consultant in to make sure we were tackling things in the right way. IT Governance really know their stuff and immediately impressed us with their calm and reassuring approach.”
- Carol McCarthy, Head of Business Control, dsicmm
"On behalf of myself and colleagues a sincere thank you for all your input helping us achieve certification to the ISO27001 standard. Here we are, just 6 months after we started the project and the outcome has been described by the auditor as ‘a delight to audit’. Much of this has been down to the mentoring and coaching style IT Governance has used to steer us to our goal."
- David Gilbert, Global Business Development Manager at Goal Group of Companies
Please email us or telephone + 44 845 070 1750 one of our consultancy team today to kick-start your ISO 27001 project.
IT Governance Ltd - your ISO 27001 consultancy partner. Approved by: